InfoWorld

Windows exploit leaked — by Microsoft?

Proof-of-concept exploit created by Microsoft has apparently leaked to the Internet. Possible sources of the leak: Microsoft security partners or an employee An attack exploiting a recently patched ...
Computerworld

Extra ‘&’ in Microsoft development code gave hackers IE exploit

Microsoft yesterday confirmed that a single superfluous character in its own development code is responsible for the bug that has let hackers exploit Internet Explorer (IE) since early July. A pair of ...
CSOonline

Hackers exploit Windows driver signature enforcement loophole for malware persistence

Attackers have used the loophole to forge signatures on maliciously modified drivers, enabling them to deploy persistent malware and defeat game defenses. A loophole in a core Windows security ...